CVE-2024-50216

In the Linux kernel, the following vulnerability has been resolved: xfs: fix finding a last resort AG in xfs_filestream_pick_ag When the main loop in xfs_filestream_pick_ag fails to find a suitable AG it tries to just pick the online AG. But the loop for that uses args->pag as loop iterator while the later code expects pag to be set. Fix this by reusing the max_pag case for this last resort, and also add a check for impossible case of no AG just to make sure that the uninitialized pag doesn't even escape in theory.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/77ddc732416b017180893cbb2356e9f0a414c575	Patch
https://git.kernel.org/stable/c/a023408925acd64db5c8980373fcb3e28ec6fd29	Patch
https://git.kernel.org/stable/c/dc60992ce76fbc2f71c2674f435ff6bde2108028	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.12:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.12:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.12:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.12:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.12:rc5::::::

History

08 Oct 2025, 15:04

Type	Values Removed	Values Added
First Time		Linux Linux linux Kernel
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
References	~~() https://git.kernel.org/stable/c/77ddc732416b017180893cbb2356e9f0a414c575 -~~	() https://git.kernel.org/stable/c/77ddc732416b017180893cbb2356e9f0a414c575 - Patch
References	~~() https://git.kernel.org/stable/c/a023408925acd64db5c8980373fcb3e28ec6fd29 -~~	() https://git.kernel.org/stable/c/a023408925acd64db5c8980373fcb3e28ec6fd29 - Patch
References	~~() https://git.kernel.org/stable/c/dc60992ce76fbc2f71c2674f435ff6bde2108028 -~~	() https://git.kernel.org/stable/c/dc60992ce76fbc2f71c2674f435ff6bde2108028 - Patch
CPE		cpe:2.3:o:linux:linux_kernel:6.12:rc3:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.12:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.12:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.12:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.12:rc5::::::
CWE		NVD-CWE-noinfo

12 Nov 2024, 13:56

Type	Values Removed	Values Added
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: xfs: se corrige la búsqueda de un AG de último recurso en xfs_filestream_pick_ag Cuando el bucle principal en xfs_filestream_pick_ag no puede encontrar un AG adecuado, intenta simplemente elegir el AG en línea. Pero el bucle para eso usa args->pag como iterador de bucle mientras que el código posterior espera que se configure pag. Corrija esto reutilizando el caso max_pag para este último recurso y también agregue una verificación para el caso imposible de que no haya AG solo para asegurarse de que el pag no inicializado ni siquiera escape en teoría.

09 Nov 2024, 11:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-11-09 11:15

Updated : 2025-10-08 15:04

NVD link : CVE-2024-50216

Mitre link : CVE-2024-50216

CVE.ORG link : CVE-2024-50216

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

5.5 /10